This is the slide for Japan Community Days in KubeCon + CloudNativeCon Japan 2025
https://community.cncf.io/events/details/cncf-cloud-native-community-japan-presents-japan-community-day-at-kubecon-cloudnativecon-japan-2025/
Abstract:
This session explores the security enhancement KEP-3619: "Fine-grained SupplementalGroups Control" graduated to beta in Kubernetes v1.33. This KEP addresses the previous mysterious behavior of managing supplementary groups, which could introduce security risks in accessing volumes. The feature enables more precise control over supplementary groups, strengthening the declarativeness of Pod configurations. Additionally, it enhances the transparency of UID/GID details through Pod manifests, offering improved oversight of security settings. Attendees will learn how these advancements can simplify and strengthen their security strategy regarding supplementary groups management.